Detections
Analytics

CVE-2026-43300

medium

Description

In the Linux kernel, the following vulnerability has been resolved: drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove() In jdi_panel_dsi_remove(), jdi is explicitly checked, indicating that it may be NULL: if (!jdi) mipi_dsi_detach(dsi); However, when jdi is NULL, the function does not return and continues by calling jdi_panel_disable(): err = jdi_panel_disable(&jdi->base); Inside jdi_panel_disable(), jdi is dereferenced unconditionally, which can lead to a NULL-pointer dereference: struct jdi_panel *jdi = to_panel_jdi(panel); backlight_disable(jdi->backlight); To prevent such a potential NULL-pointer dereference, return early from jdi_panel_dsi_remove() when jdi is NULL.

References

https://git.kernel.org/stable/c/ec2f37bbb733cdd7ed7d04171fca728a532414d5

https://git.kernel.org/stable/c/95eed73b871111123a8b1d31cb1fce7e902e49ea

https://git.kernel.org/stable/c/83ce0085fabf757b039322928188ad78e962d609

https://git.kernel.org/stable/c/2f5427d8726b22b807beec248d7d6bf88e291e0b

Details

Source: Mitre, NVD

Published: 2026-05-08

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium